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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 

WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .1 36(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S. C. § 1 33). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)^ Responsive to connmunication(s) filed on 03 May 2006 . 
2a)S This action is FINAL. 2b)n This action is non-final. 

3) n Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) S Claim(s) 1-5,8-12,14 and 16-20 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) n Claim(s) is/are allowed. 

6) [EI Claim{s) 1-5. 8-12, 14. 16-20 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) n Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10)0 The drawing(s) filed on is/are: a)n accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1,121 (d). 
11 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12)0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 
Response to Arguments 

Applicant's arguments filed 5/3/06 have been fully considered but they are not 
persuasive. 

Applicant argues that Freund US 2003/0167405 does not teach determining location 
based on IP. The examiner disagrees with the applicant in that Freund teaches use of the 
IP address among netv^ork data to configure the firewall. 

Applicant's arguments, filed 5/3/2006, with respect to the rejection(s) of claim(s) have 
been fully considered and are persuasive. Therefore, the rejection has been withdrawn. 
However, upon further consideration, a new ground(s) of rejection is made in view of 
Kumar US 2003/0005089. 

Applicant argues that Freund fails to teach verification of current location based on a 
predetermined network element. While Freund does teach that the device connects to the 
network which configures the device, [0095], Freund does not teach the specifics of the 
action. 
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Claim Rejections - 35 USC § 103 
2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 1-5, 8, 10, 12, and 14 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Freund US 2003/0167405. in view of Kumar US 2003/0005089. 

As per claims 1,12, and 14 

Freund teaches the ability to detect when a client is connected to different netv^orks, and 
using different security settings depending on the network [0073]. Freund teaches 
determining the network the client is connected to in part by detecting the IP address, 
[0078], [0088]. Freund teaches gathering identification data from a predetermined 
network element [0087]. Freund teaches the firewall determining between a trusted and 
untrusted network, [0097]. Freund teaches providing the client with different rules, and 
enabling the rules depending on location, [0074]. Freund does not specifically teach 
connecting to a network to obtain information. 

Kumar teaches configuring a device based on the IP address of the predetermined 
network element (gateway) [0013], [0014], [0017], [0018]. It is inherent that the gateway 
is only available for verification fi-om the current location if the client is in the correct IP 
range. 
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It would have been obvious to use the method of obtaining network connection 
information of Kumar with the firewall configuration method of Freund because the 
firewall needs to configure itself based on the connected network, Fruend [0096]. 



As per claim 2, Freund teaches providing the client with different rules, and enabling the 
rules depending on location, [0074]. 

As per claim 3, Freund teaches using one set of rules by changing groups [0080]. 
As per claim 4, and 5 Fruend teaches storing the IP address off the home network and 
determining if the firewall is in said home network [0142], [0078], [0099]. 
As per claim 8 Fruend teaches that the networks element responds when client is in the 
network of the current IP, and verifies this information also with a MAC address, [0078]. 
As per claim 10, Fruend teaches that the user defines the networks in a trusted zone, and 
that when the mobile computer moves in from network to network, it queries the new 
network in the trusted zone,[0073], [0078]. 



Claims 9, 16, 17, and 19 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Freund US 2003/0167405 in view of Kumar US 2003/0005089 in view of 
Schneier US 2002/0087882, 
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As per claims 9, 16, 17, and 19 

Freund teaches the ability to detect when a client is connected to different networks, and 
using different security settings depending on the network [0073]. Freund teaches 
determining the network the client is connected to in part by detecting the IP address, 
[0078], [0088 Freund teaches gathering identification data from a predetermined network 
element [0087]. Freund teaches the firewall determining between a trusted and 
untrusted network, [0097]. Freund teaches providing the client with different rules, and 
enabling the rules depending on location, [0074]. Freund does not specifically teach 
connecting to a network to obtain information. 
Fruend does not teach updating the firewall rules via a centralized unit. 
Kumar teaches configuring a device based on the IP address of the predetermined 
network element (gateway) [0013], [0014], [0017], [0018]. It is inherent that the gateway 
is only available for verification from the current location if the client is in the correct IP 
range. 

It would have been obvious to use the method of obtaining network connection 
information of Kumar with the firewall configuration method of Freund because the 
firewall needs to configure itself based on the connected network, Fruend [0096]. 

Schneier teaches a centralized unit manages updates to software including updates to 
firewall software, [0037]. 
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It would have been obvious to one of ordinary skill in the art to combine the firewall 
system of Fruend with the central firewall update system of Schneier because the central 
system allows all clients on the trusted system to maintain the same security policy. 



Claims 11, 18, and 20 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over by Freund US 2003/0167405 in view of Sheikh US 2002/0078382 

As per claims 11, 18, and 20 

Freund teaches the ability to detect when a client is cormected to different networks, and 
using different security settings depending on the network [0073]. Freund teaches 
determining the network the client is connected to in part by detecting the IP address, 
[0078], [0088 Freund teaches gathering identification data from a predetermined network 
element [0087]. Freimd teaches the firewall determining between a trusted and 
untrusted network, [0097]. Freund teaches providing the client with different rules, and 
enabling the rules depending on location, [0074]. Freund does not specifically teach 
connecting to a network to obtain information. 

Freund does not teach updating the firewall rules via a centralized unit. 

Kumar teaches configuring a device based on the IP address of the predetermined 
network element (gateway) [0013], [0014], [0017], [0018]. It is inherent that the gateway 
is only available for verification from the current location if the client is in the correct IP 
range. 
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It would have been obvious to use the method of obtaining network connection 
information of Kumar with the firewall configuration method of Freund because the 
firewall needs to configure itself based on the connected network, Fruend [0096]. 

Freund teaches maintaining a log, [0141]. Freund does not teach updating a centralized 
log server with collected logs of the firewall. 

Sheikh teaches gathering logs fi"om a firewall and transporting them and archiving them 
in a central server, [0082]. 

It would have been obvious to one of ordinary skill in the art to use the logs of Fruend in 
the central server of Sheikh so that the network wide logs could be inspected and 
analyzed. 

Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection presented in this 
Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706, 07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
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extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of the 
advisory action. In no event, however, will the statutory period for reply expire later than 
SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Christopher J. Brown whose telephone number is 
(571)272-3833. The examiner can normally be reached on 8:30-6:00. 
If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Jaques Louis Jaques can be reached on (571)272-6962. The fax phone 
nimiber for the organization where this application or proceeding is assigned is 571-273- 



Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov. Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a USPTO 
Customer Service Representative or access to the automated information system, call 
800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

Christopher J. Brown 7/23/06 



8300. 





